Lead Security Engineer (USA)

BitMine Immersion Technologies

Company: Bitmine Immersion Technologies, Inc. (NYSE: BMNR)

Location: San Francisco, CA, or Norwalk, CT (Preferred), or Remote within the United States

Employment Type: Full-time

Reports to: SVP of Technology, SVP of Engineering, and VP of Engineering

Bitmine Immersion Technologies, Inc. (NYSE: BMNR) operates at the cutting edge of digital asset infrastructure and technology. As a publicly traded company, our team operates across the United States and globally, managing a diverse portfolio of operations that sit uniquely at the intersection of public blockchain protocols and capital markets.

Included within our corporate umbrella is our subsidiary, MAVAN (Made in America Validator Network), which you will support as a core part of your scope. MAVAN is one of the largest single staking operations in the world, providing institutional grade, non-custodial staking and node services across a global institutional client profile.

Job Summary

Lead our technical security across cloud, infrastructure, and validator systems.

We're hiring a Lead Security Engineer to own and enhance technical security across our cloud infrastructure. You'll be our senior technical authority on security: hardening our environments, optimising real detection and response capability, embedding least-privilege and secure-by-default practices, and helping a fast-moving engineering team ship safely.

This is a hands-on leadership role. You'll set the technical direction and do the work, partnering closely with engineering, infrastructure, and leadership, and with our external audit and incident-response partners. There is room to grow a small team behind you as the function matures.

What Success Looks Like (First 6–12 Months)

  • Comprehensive, continuously monitored visibility across our cloud infrastructure and attack surface.
  • Least-privilege and short-lived access championed and consistently applied across teams.
  • Detection, alerting, and tested response runbooks spanning both infrastructure and on-chain activity.
  • Secure-by-default guardrails: change review, IaC checks and tooling, embedded in how the team ships.

Key Responsibilities

  • Cloud & Infrastructure Security: Own and advance the security of our Google Cloud (GCP) environment; operate cloud security posture management, network segmentation, and guardrails as policy-as-code; and maintain comprehensive, continuously monitored visibility across our infrastructure.
  • Identity, Access & Secrets: Champion least-privilege across both human and machine identities; enhance and operate short-lived, workload-bound access; and own robust secrets management and the credential lifecycle.
  • CI/CD, IaC & Supply Chain: Secure our pipelines and infrastructure-as-code (GitLab, Terraform); champion secrets hygiene; manage third-party, dependency, and supply-chain risk; and own vulnerability and patch management.
  • Detection & Response: Maintain detection engineering and security monitoring across infrastructure; advance our SIEM, logging, and alerting; and lead incident response, coordinating with external partners.
  • Governance & Culture: Own change-management guardrails and security review for sensitive changes; lead threat modeling and secure-SDLC practices; and raise the bar across the team through training, security champions, and clear guidance on the "why" behind security decisions.

Key Requirements

  • 8+ years of experience in security engineering, with real depth in cloud security, ideally GCP.
  • Strong, hands-on skills across IAM and least-privilege, secrets management, and network security in cloud-native environments.
  • Experience securing CI/CD pipelines and infrastructure-as-code (Terraform, GitLab, or equivalents).
  • Detection engineering and security monitoring experience (SIEM, log pipelines, alerting), plus practical incident response.
  • Solid coding/scripting ability enough to automate, build internal tooling, and review infrastructure code.
  • A track record of leading technical security initiatives and influencing engineers through expertise rather than authority.
  • Pragmatic judgment: you raise the security bar in a fast-moving environment while keeping the business moving.

Bonus Points

  • Crypto / web3 security experience: key management, HSMs or threshold signing, wallet security, validator/staking infrastructure, or smart-contract security.
  • Familiarity with blockchain operations, Ethereum and the broader multi-chain ecosystem.
  • Endpoint and identity tooling such as Microsoft Intune/Defender or FreeIPA.
  • Experience building or scaling a security function in a high-growth environment.

What We Offer

  • Outsized Impact: Security is mission-critical here, with genuine leadership backing and budget (audits, tooling, headcount).
  • Ownership: You'll define the technical security roadmap and own it end-to-end.
  • Meaningful Challenges: Solve hard, meaningful problems at the frontier of crypto infrastructure and scale.

Compensation and Benefits

  • Base Salary Range: $180,000 to $250,000 annually.
  • Actual compensation within this range will depend on location, experience, and qualifications.

How to Apply

Email ***email_hidden*** with your resume and a short cover letter.

Note: Applications will be accepted on an ongoing basis. Applicants must be authorized to work in the United States.

Bitmine Immersion Technologies, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by applicable law.

Apply Now Apply Now Post a Resume

See more jobs in Norwalk, CT, jobs in the United States